New Defects reported by Coverity Scan for LibreOffice

scan-admin -AT- coverity.com
Tue, 19 Jun 2018 15:21:39 +0000 (UTC)

Hi,

Please find the latest report on new defect(s) introduced to LibreOffice found with Coverity Scan.

4 new defect(s) introduced to LibreOffice found with Coverity Scan.
1 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by 
Coverity Scan.

New defect(s) Reported-by: Coverity Scan
Showing 4 of 4 defect(s)


** CID 1437410:  Null pointer dereferences  (FORWARD_NULL)


________________________________________________________________________________________________________
*** CID 1437410:  Null pointer dereferences  (FORWARD_NULL)
/sw/source/core/docnode/ndtbl1.cxx: 93 in SwTableFormatCmp::~SwTableFormatCmp()()
87     }
88     
89     SwTableFormatCmp::~SwTableFormatCmp()
90     {
91         if (pOld)
92             pOld->Remove(this);

    CID 1437410:  Null pointer dereferences  (FORWARD_NULL)
    Passing null pointer "this->pOld" to "HasWriterListeners", which dereferences it.

93         if (!pOld->HasWriterListeners())
94             delete pOld;
95     }
96     
97     // static
98     SwFrameFormat* 
SwTableFormatCmp::FindNewFormat(std::vector<std::unique_ptr<SwTableFormatCmp>>& rArr,

** CID 1437409:  Null pointer dereferences  (FORWARD_NULL)


________________________________________________________________________________________________________
*** CID 1437409:  Null pointer dereferences  (FORWARD_NULL)
/sw/qa/extras/ww8export/ww8export2.cxx: 311 in testTdf70838::verify()()
305         CPPUNIT_ASSERT(xText->getSize().Width  > 11000);
306     }
307     
308     DECLARE_WW8EXPORT_TEST(testTdf70838, "tdf70838.odt")
309     {
310         SwXTextDocument* pTextDoc = dynamic_cast<SwXTextDocument *>(mxComponent.get());

    CID 1437409:  Null pointer dereferences  (FORWARD_NULL)
    Passing null pointer "pTextDoc" to "GetDocShell", which dereferences it.

311         SwDoc* pDoc = pTextDoc->GetDocShell()->GetDoc();
312         SdrPage* pPage = pDoc->getIDocumentDrawModelAccess().GetDrawModel()->GetPage(0);
313         tools::Rectangle aRect = pPage->GetObj(0)->GetSnapRect();
314         CPPUNIT_ASSERT( aRect.GetHeight() > aRect.GetWidth() );
315     }
316     

** CID 1437408:  Uninitialized members  (UNINIT_CTOR)
/svx/source/dialog/paraprev.cxx: 221 in ParaPrevWindow::ParaPrevWindow()()


________________________________________________________________________________________________________
*** CID 1437408:  Uninitialized members  (UNINIT_CTOR)
/svx/source/dialog/paraprev.cxx: 221 in ParaPrevWindow::ParaPrevWindow()()
215         nLeftMargin     ( 0 ),
216         nRightMargin    ( 0 ),
217         eAdjust         ( SvxAdjust::Left ),
218         eLastLine       ( SvxAdjust::Left )
219     {
220         aSize = Size(11905, 16837);

    CID 1437408:  Uninitialized members  (UNINIT_CTOR)
    Non-static class member "eLine" is not initialized in this constructor nor in any functions 
that it calls.

221     }
222     
223     void ParaPrevWindow::SetDrawingArea(weld::DrawingArea* pDrawingArea)
224     {
225         Size aOptimalSize(getParagraphPreviewOptimalSize(pDrawingArea->get_ref_device()));
226         pDrawingArea->set_size_request(aOptimalSize.Width(), aOptimalSize.Height());

** CID 1437407:  FindBugs: Malicious code vulnerability  
(FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
/scripting/java/com/sun/star/script/framework/provider/ClassLoaderFactory.java: 48 in 
com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(java.lang.ClassLoader, 
java.net.URL[])()


________________________________________________________________________________________________________
*** CID 1437407:  FindBugs: Malicious code vulnerability  
(FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
/scripting/java/com/sun/star/script/framework/provider/ClassLoaderFactory.java: 48 in 
com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(java.lang.ClassLoader, 
java.net.URL[])()
42     
43             return getURLClassLoader(parent, classPath);
44         }
45     
46         public static ClassLoader getURLClassLoader(ClassLoader parent,
47                 URL[] classpath) {

    CID 1437407:  FindBugs: Malicious code vulnerability  
(FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)
    com.sun.star.script.framework.provider.ClassLoaderFactory.getURLClassLoader(ClassLoader, 
URL[]) creates a java.net.URLClassLoader classloader, which should be performed within a 
doPrivileged block.

48             return new URLClassLoader(classpath, parent);
49         }


________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, 
https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRZBnDJeNb0HijxaS4JNJPxk3kpyAm2AYqo71yXmnOxB72ibeUH-2F-2F1Lhi9AZq3dRu-2F4-3D_g-2BrHdvqzaBa155F-2F8AmPhpJzY63UzWDisJV95WUBpGhqFw1ICExHG8aMaV2EoFpyNgRalQv3-2FPxLwxoPwdptXUkrgux6lWK0ySo6MMNEMfyGqRgmlJgXMUazIz9n8K0ijKKqkJnThuSiipn71UXVFr-2FeReUAvK0DQGzsIq724PAjaKbImO-2FouklEnRLcrG2ntgnD-2BYU9x-2BfjN66PkUQTWBBWVQ3ditBQK8HLoGDJ78o-3D

Context

New Defects reported by Coverity Scan for LibreOffice · scan-admin

Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.